Hi,
I was a target of an attack resulting in 1600 banned IP address by fail2ban.
When I reboot, f2b tries to unban those IPs but it ultimately times out and a large number of IPs becomes orphaned. They stay in firewalld, but f2b does not know about them anymore.
And indeed
root@ryzen:/etc/systemd/system# systemctl show fail2ban.service -p TimeoutStopUSec
TimeoutStopUSec=45s
How do I increase the 45s timeout to something more suitable? I was not able to find where in the system is that value set.
Thanks Frank
Of course, you'll want to set something suitable for your system's needs
~]# cat /etc/systemd/system/fail2ban.service.d/timeout.conf [Service] TimeoutStopSec=5min
On 2024-05-12 16:11, Anthony Messina wrote:
Of course, you'll want to set something suitable for your system's needs
~]# cat /etc/systemd/system/fail2ban.service.d/timeout.conf [Service] TimeoutStopSec=5min
Thanks Frank
-
Anthony Messina -
Frank Bures